$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: QXoAJHaArjmeh3Zt3OYpDlW8pZplgxvNHvd0DDsIC3A= Subject key identifier: CC:84:4F:19:5B:A8:83:7B:32:AC:37:F4:23:CF:5D:71:AF:93:35:97 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: EB Signing time: Fri 13 Jun 2025 04:20:45 +0000 Manifest this update: Fri 13 Jun 2025 04:20:44 +0000 Manifest next update: Fri 20 Jun 2025 04:20:44 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: xwJ7A4EU3oIqfeonqnJWmyL6NFzAcMl7Rr8RsqY+3Oc=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Jun 13 04:20:44 2025 GMT Not After : Jun 20 04:20:44 2025 GMT Subject: CN=684ba71c-359a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:d8:d7:02:3f:bd:21:d8:2c:1f:f9:51:50: 85:e4:dd:b0:e6:5e:48:98:60:82:3b:41:0c:e8:0c: 8e:9d:59:fa:de:33:9a:57:59:5c:39:7a:69:54:e8: 95:99:ae:46:6c:e0:7f:3f:5b:79:41:bf:d9:59:91: f1:3e:a5:97:aa:04:13:05:1a:d3:20:d3:4c:77:79: e4:e5:7b:76:1a:2b:17:63:07:10:20:6d:da:19:58: f9:d2:ad:20:c1:fa:f4:98:a5:32:97:2c:da:59:34: ef:9f:cf:14:a5:5a:da:66:0b:69:00:a6:57:72:42: 84:12:60:7d:8f:e1:c8:ce:1b:52:50:8f:b7:b7:54: 15:59:22:2a:81:87:e9:60:78:50:0b:c6:6b:13:c3: a1:fc:c3:a5:0d:7b:b8:6e:05:df:8f:34:49:5b:b3: f0:82:99:46:03:3b:15:d4:43:61:99:2f:72:74:38: 9a:01:d3:6d:59:62:2a:3c:51:1c:10:20:0f:43:2d: ed:1b:ec:d8:d9:51:7b:07:ed:6b:73:87:29:c8:4a: 61:b6:74:4a:92:e6:1e:6f:53:3c:e1:40:f6:d2:47: 4a:a8:e8:9c:ff:9c:7a:0c:4f:4c:ff:18:d5:2d:ab: 7c:05:ef:f4:cb:9f:1c:c8:83:1e:13:2f:f8:3d:ae: c7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:84:4F:19:5B:A8:83:7B:32:AC:37:F4:23:CF:5D:71:AF:93:35:97 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:08:26:c0:d1:c6:59:c9:75:d4:0e:a8:df:bd:f2:85:d6:41: 98:bc:55:32:c5:9a:fd:9a:5c:4e:9f:e7:81:28:84:ac:af:de: 01:0d:f8:2b:23:71:74:66:0b:8f:dd:70:53:af:b3:0c:1e:26: c6:1f:07:ff:25:d7:7c:8c:10:00:2e:ff:45:34:fa:38:e3:fe: d9:33:98:ca:da:2d:fd:3d:c8:df:51:7b:c8:aa:56:6a:fe:c6: 36:82:10:d5:bf:29:36:8e:0d:fd:c0:01:b9:b1:1f:3c:f8:23: 0a:0b:15:20:ca:4d:21:06:ce:0a:a8:a5:40:2a:53:eb:ec:10: a3:c1:7b:77:e3:90:6c:c9:fd:c9:a4:50:50:1f:53:30:1c:95: 0a:5d:ea:1c:98:10:de:25:8e:02:dc:63:c9:43:b5:59:d7:a8: dd:03:23:c0:a9:f8:d0:44:0d:2b:43:cb:a4:1a:c7:3e:1f:8c: 97:8e:6d:d5:8d:67:d4:81:08:09:d5:b3:50:41:78:66:c1:d9: 0e:e0:23:3c:fa:75:0e:4f:f7:55:b9:d5:cd:09:09:b0:e9:f9: 1e:92:65:75:9e:01:aa:2d:66:f3:0c:1e:b0:bb:96:07:95:9d: 7b:a2:c2:5d:03:64:27:78:f4:89:99:c9:f2:c2:89:ed:e2:f0: a6:74:bb:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUwNjEzMDQyMDQ0WhcNMjUwNjIwMDQyMDQ0WjAYMRYwFAYD VQQDEw02ODRiYTcxYy0zNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeTY1wI/vSHYLB/5UVCF5N2w5l5ImGCCO0EM6AyOnVn63jOaV1lcOXppVOiV ma5GbOB/P1t5Qb/ZWZHxPqWXqgQTBRrTINNMd3nk5Xt2GisXYwcQIG3aGVj50q0g wfr0mKUylyzaWTTvn88UpVraZgtpAKZXckKEEmB9j+HIzhtSUI+3t1QVWSIqgYfp YHhQC8ZrE8Oh/MOlDXu4bgXfjzRJW7PwgplGAzsV1ENhmS9ydDiaAdNtWWIqPFEc ECAPQy3tG+zY2VF7B+1rc4cpyEphtnRKkuYeb1M84UD20kdKqOic/5x6DE9M/xjV Lat8Be/0y58cyIMeEy/4Pa7HfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyETxlb qIN7Mqw39CPPXXGvkzWXMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5CCbA0cZZyXXUDqjfvfKF1kGYvFUyxZr9mlxOn+eBKISsr94BDfgr I3F0ZguP3XBTr7MMHibGHwf/Jdd8jBAALv9FNPo44/7ZM5jK2i39PcjfUXvIqlZq /sY2ghDVvyk2jg39wAG5sR88+CMKCxUgyk0hBs4KqKVAKlPr7BCjwXt345Bsyf3J pFBQH1MwHJUKXeocmBDeJY4C3GPJQ7VZ16jdAyPAqfjQRA0rQ8ukGsc+H4yXjm3V jWfUgQgJ1bNQQXhmwdkO4CM8+nUOT/dVudXNCQmw6fkekmV1ngGqLWbzDB6wu5YH lZ17osJdA2QnePSJmcnywont4vCmdLvj -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:11 2025 by rpki-client